Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/0232F096E4D311EEAA6E6478C4F9AE02.roa
File: 0232F096E4D311EEAA6E6478C4F9AE02.roa (raw, json)
Hash identifier: mJ6oxPdeT8YI/M8FBw9iLyc2LHy119RVOUztb9iCBL0=
Subject key identifier: 51:A0:40:0A:59:5E:8C:2C:78:DA:8E:F2:5C:C5:76:69:5C:56:8B:50
Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E
Certificate serial: 3586
Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/0232F096E4D311EEAA6E6478C4F9AE02.roa
Signing time: Mon 18 Mar 2024 02:58:34 +0000
ROA not before: Mon 18 Mar 2024 02:58:34 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 9335
IP address blocks: 61.19.240.0/20 maxlen: 22
61.19.240.0/21 maxlen: 24
61.19.248.0/22 maxlen: 24
61.19.252.0/23 maxlen: 23
61.19.252.0/24 maxlen: 24
110.78.192.0/20 maxlen: 24
110.78.208.0/21 maxlen: 24
110.78.216.0/22 maxlen: 22
110.78.220.0/22 maxlen: 24
110.78.228.0/22 maxlen: 22
110.78.228.0/24 maxlen: 24
110.78.229.0/24 maxlen: 24
110.78.230.0/24 maxlen: 24
110.78.231.0/24 maxlen: 24
110.78.252.0/24 maxlen: 24
110.78.253.0/24 maxlen: 24
110.78.254.0/24 maxlen: 24
110.78.255.0/24 maxlen: 24
122.155.0.0/19 maxlen: 23
122.155.0.0/20 maxlen: 24
122.155.16.0/21 maxlen: 24
122.155.24.0/23 maxlen: 24
122.155.28.0/22 maxlen: 24
122.155.55.0/24 maxlen: 24
122.155.144.0/21 maxlen: 24
122.155.160.0/19 maxlen: 24
122.155.192.0/24 maxlen: 24
122.155.193.0/24 maxlen: 24
122.155.194.0/24 maxlen: 24
122.155.195.0/24 maxlen: 24
122.155.196.0/24 maxlen: 24
122.155.197.0/24 maxlen: 24
122.155.198.0/24 maxlen: 24
122.155.199.0/24 maxlen: 24
122.155.200.0/24 maxlen: 24
122.155.201.0/24 maxlen: 24
122.155.202.0/24 maxlen: 24
122.155.203.0/24 maxlen: 24
122.155.204.0/24 maxlen: 24
122.155.205.0/24 maxlen: 24
122.155.206.0/24 maxlen: 24
122.155.207.0/24 maxlen: 24
122.155.208.0/24 maxlen: 24
122.155.209.0/24 maxlen: 24
122.155.210.0/24 maxlen: 24
122.155.211.0/24 maxlen: 24
122.155.212.0/24 maxlen: 24
122.155.215.0/24 maxlen: 24
122.155.216.0/24 maxlen: 24
122.155.220.0/24 maxlen: 24
122.155.221.0/24 maxlen: 24
122.155.222.0/24 maxlen: 24
122.155.223.0/24 maxlen: 24
202.3.68.0/24 maxlen: 24
202.3.69.0/24 maxlen: 24
202.3.70.0/24 maxlen: 24
202.3.71.0/24 maxlen: 24
202.139.192.0/22 maxlen: 22
202.139.192.0/24 maxlen: 24
202.139.193.0/24 maxlen: 24
202.139.194.0/24 maxlen: 24
202.139.195.0/24 maxlen: 24
202.139.196.0/24 maxlen: 24
202.139.198.0/24 maxlen: 24
202.139.199.0/24 maxlen: 24
202.139.223.0/24 maxlen: 24
2001:c38:1000::/36 maxlen: 48
2001:c38:2000::/36 maxlen: 36
2001:c38:2000::/48 maxlen: 48
2001:c38:20f8::/48 maxlen: 48
2001:c38:3001::/48 maxlen: 48
2001:c38:3002::/48 maxlen: 48
2001:c38:3003::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 May 2024 07:14:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13702 (0x3586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E
Validity
Not Before: Mar 18 02:58:34 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=65f7adda-3cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3f:95:fd:e1:a4:e9:d8:1d:ec:fa:83:5e:99:
dc:ea:c5:3f:e1:4a:37:77:c8:20:13:fe:9c:6b:40:
40:6d:68:ca:86:92:84:4e:70:39:62:e5:c0:38:20:
31:61:49:25:af:2a:97:d8:f6:18:8e:18:3e:61:b6:
30:35:16:8a:a1:4c:23:70:e5:c8:7d:b8:41:67:c2:
3f:f3:96:7f:91:65:b3:e2:4c:0c:29:37:e3:48:44:
a4:bd:a9:f0:f9:97:5e:06:50:0a:8a:66:ff:81:b7:
0f:7b:91:f7:3d:f4:d8:cb:e5:e8:89:01:be:da:bf:
4c:4b:08:e0:80:4f:00:df:d7:50:c9:5e:2d:df:ba:
04:8b:99:8c:52:a8:ad:34:19:21:46:d3:8d:22:65:
76:45:98:cf:b0:bc:9c:60:56:69:03:60:31:a7:2a:
b2:b6:71:44:71:8d:33:5e:a8:f9:29:f2:c6:13:65:
31:56:21:de:da:f0:a2:cb:a2:cf:fa:84:b8:4a:5b:
b5:c5:d6:53:49:15:a4:2a:f7:98:82:53:95:29:31:
7d:60:d5:0e:05:d8:8c:dc:80:90:9c:8b:06:61:05:
82:57:30:65:6f:3d:38:d7:77:43:a8:29:52:23:68:
79:08:0a:d9:25:40:0a:59:c1:bf:b0:a8:bf:24:80:
2c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A0:40:0A:59:5E:8C:2C:78:DA:8E:F2:5C:C5:76:69:5C:56:8B:50
X509v3 Authority Key Identifier:
keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/0232F096E4D311EEAA6E6478C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.19.240.0/20
110.78.192.0/19
110.78.228.0/22
110.78.252.0/22
122.155.0.0/19
122.155.55.0/24
122.155.144.0/21
122.155.160.0-122.155.212.255
122.155.215.0-122.155.216.255
122.155.220.0/22
202.3.68.0/22
202.139.192.0-202.139.196.255
202.139.198.0/23
202.139.223.0/24
IPv6:
2001:c38:1000::-2001:c38:2fff:ffff:ffff:ffff:ffff:ffff
2001:c38:3001::-2001:c38:3003:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
18:ab:25:ac:14:2c:b5:9d:79:f1:55:1f:4e:49:06:7c:68:7f:
86:d2:06:2c:4e:fe:e8:00:e0:59:0a:a8:b7:eb:1b:f5:58:cb:
92:ea:e5:4a:64:02:c7:d9:23:0b:13:87:91:82:8a:45:93:4f:
07:5d:ba:cc:e4:15:f2:83:0d:4c:a8:6f:fa:10:6f:97:3b:90:
58:4d:0b:ee:e0:4b:cf:fb:99:db:6e:9c:b2:10:7a:ab:b4:74:
40:ec:9b:b1:e3:ed:a1:e4:40:a4:c2:47:81:33:8b:15:ad:ec:
b9:97:d7:29:d5:65:02:02:93:3a:d5:84:8a:bb:8b:7e:7a:e6:
7c:47:29:89:01:d8:18:6f:8d:24:a8:a5:1e:a1:dc:4d:ab:79:
c3:bd:ea:4b:da:e2:86:dd:82:4b:3e:73:50:5b:7f:b0:c2:00:
8e:74:0d:d6:fa:24:76:14:0a:80:ba:33:1e:16:c2:0e:1a:86:
1f:91:8d:8a:97:d9:1a:41:a3:86:92:98:8c:89:2f:9e:e6:5e:
44:d3:53:4a:4f:9d:10:41:8d:98:ac:9b:33:4b:c8:05:d0:33:
9b:ca:e6:94:00:68:b7:b2:27:02:c8:47:23:e7:cc:97:c8:fd:
5f:d1:ab:66:1c:e7:ad:f7:0c:d2:5a:f6:3a:c1:a4:ff:6b:4c:
1b:83:6e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 09:25:10 2024 by rpki-client on console-ams.rpki-client.org